{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2023-2374","assignerOrgId":"1af790b2-7ee1-4545-860a-a788eba489b5","state":"PUBLISHED","assignerShortName":"VulDB","dateReserved":"2023-04-28T11:29:52.832Z","datePublished":"2023-04-28T14:31:04.038Z","dateUpdated":"2026-07-09T13:53:09.733Z"},"containers":{"cna":{"providerMetadata":{"orgId":"1af790b2-7ee1-4545-860a-a788eba489b5","shortName":"VulDB","dateUpdated":"2026-07-09T13:53:09.733Z"},"title":"Ubiquiti EdgeRouter X Web Management command injection","problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-77","lang":"en","description":"Command Injection"}]},{"descriptions":[{"type":"CWE","cweId":"CWE-74","lang":"en","description":"Injection"}]}],"affected":[{"vendor":"Ubiquiti","product":"EdgeRouter X","versions":[{"version":"2.0.9-hotfix.0","status":"affected"},{"version":"2.0.9-hotfix.1","status":"affected"},{"version":"2.0.9-hotfix.2","status":"affected"},{"version":"2.0.9-hotfix.3","status":"affected"},{"version":"2.0.9-hotfix.4","status":"affected"},{"version":"2.0.9-hotfix.5","status":"affected"},{"version":"2.0.9-hotfix.6","status":"affected"}],"cpes":["cpe:2.3:h:ubiquiti:edgerouter_x:*:*:*:*:*:*:*:*"],"modules":["Web Management Interface"]}],"descriptions":[{"lang":"en","value":"A security flaw has been discovered in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This issue affects some unknown processing of the component Web Management Interface. Performing a manipulation of the argument ecn-down results in command injection. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. The existence of this vulnerability is still disputed at present. The vendor position is that post-authentication issues are not accepted as vulnerabilities."}],"metrics":[{"cvssV4_0":{"version":"4.0","baseScore":8.6,"vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P","baseSeverity":"HIGH"}},{"cvssV3_1":{"version":"3.1","baseScore":7.2,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R","baseSeverity":"HIGH"}},{"cvssV3_0":{"version":"3.0","baseScore":7.2,"vectorString":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R","baseSeverity":"HIGH"}},{"cvssV2_0":{"version":"2.0","baseScore":8.3,"vectorString":"AV:N/AC:L/Au:M/C:C/I:C/A:C/E:POC/RL:ND/RC:UR"}}],"timeline":[{"time":"2023-04-28T00:00:00.000Z","lang":"en","value":"Advisory disclosed"},{"time":"2023-04-28T00:00:00.000Z","lang":"en","value":"CVE reserved"},{"time":"2023-04-28T02:00:00.000Z","lang":"en","value":"VulDB entry created"},{"time":"2026-07-09T15:54:02.000Z","lang":"en","value":"VulDB entry last update"}],"credits":[{"lang":"en","value":"leetmoon (VulDB User)","type":"reporter"},{"lang":"en","value":"VulDB CNA Team","type":"coordinator"}],"references":[{"url":"https://vuldb.com/vuln/227650","name":"VDB-227650 | Ubiquiti EdgeRouter X Web Management command injection","tags":["vdb-entry","technical-description"]},{"url":"https://vuldb.com/vuln/227650/cti","name":"VDB-227650 | CTI Indicators (IOB, IOC, TTP, IOA)","tags":["signature","permissions-required"]},{"url":"https://vuldb.com/cve/CVE-2023-2374","name":"CVE-2023-2374 | CVE Analysis and Report","tags":["third-party-advisory"]},{"url":"https://vuldb.com/submit/114075","name":"Submit #114075 | Command injection at the web management interface of EdgeRouter-x(6)","tags":["third-party-advisory"]},{"url":"https://github.com/leetsun/IoT/tree/main/EdgeRouterX/CI/6","tags":["broken-link","exploit"]}],"tags":["disputed"]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T06:19:14.979Z"},"title":"CVE Program Container","references":[{"url":"https://vuldb.com/?id.227650","tags":["vdb-entry","technical-description","x_transferred"]},{"url":"https://vuldb.com/?ctiid.227650","tags":["signature","permissions-required","x_transferred"]},{"url":"https://github.com/leetsun/IoT/tree/main/EdgeRouterX/CI/6","tags":["exploit","x_transferred"]}]}]}}